$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/9D849C0C98FE11E7A3A5F161C4F9AE02.roa File: 9D849C0C98FE11E7A3A5F161C4F9AE02.roa (raw, json) Hash identifier: htda9TiOIlXHheUEzpXiQijOUgH7nA3aLWyRMRsqm6o= Subject key identifier: 2C:30:78:13:07:5F:14:42:7F:F7:D7:41:CB:6E:72:2F:60:EE:0F:4C Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 17C7 Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/9D849C0C98FE11E7A3A5F161C4F9AE02.roa Signing time: Mon 04 Mar 2024 17:04:51 +0000 ROA not before: Mon 04 Mar 2024 17:04:51 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 63989 IP address blocks: 103.82.248.0/24 maxlen: 24 103.82.249.0/24 maxlen: 24 103.82.250.0/23 maxlen: 23 103.82.250.0/24 maxlen: 24 103.82.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6087 (0x17c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Mar 4 17:04:51 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e5ff32-066f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:03:56:e2:c4:4e:96:3e:9e:4e:e1:ef:69:e5: 32:49:55:65:16:bf:77:c7:07:49:65:0b:f4:11:6a: 82:25:da:55:7b:3b:15:10:69:5f:73:ac:36:b6:89: 62:d2:cd:62:36:61:33:00:a6:8e:bc:b3:df:f9:46: c5:23:1e:28:c9:e4:3d:38:bf:3b:04:ed:01:d2:2b: ea:c5:ba:a8:c4:d0:78:f4:96:1b:8e:a1:8c:50:d1: 06:84:37:3f:fa:bf:e7:ec:26:b1:6b:88:fb:95:bc: 9a:f2:2e:56:72:c3:e9:1c:53:e4:3c:cf:6a:35:b5: 14:b2:a7:25:16:a6:e0:40:c2:88:d9:22:96:0a:9f: 16:50:6a:1b:27:16:de:b7:7c:11:ad:f4:eb:94:57: ca:8f:bd:e5:e1:2e:5e:b0:11:37:55:04:6e:b9:44: ec:74:62:25:1b:dd:54:de:b4:23:43:11:e5:ef:59: 6b:86:fb:51:ce:30:72:45:5e:82:d7:e5:e5:c2:65: 97:ed:ae:f6:66:3e:2d:ec:00:f9:3f:e6:13:cd:a7: 50:79:b2:08:34:df:16:3e:e9:7d:1c:58:d3:ca:43: 5a:f9:96:80:aa:b3:34:ec:48:57:e7:8d:9b:89:67: da:88:2d:13:0c:0d:c0:72:5e:2a:df:78:e3:bf:d7: 2c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:30:78:13:07:5F:14:42:7F:F7:D7:41:CB:6E:72:2F:60:EE:0F:4C X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/9D849C0C98FE11E7A3A5F161C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.248.0/22 Signature Algorithm: sha256WithRSAEncryption 34:05:36:9c:35:6d:d0:95:78:41:18:a6:95:4b:0d:af:ce:35: bb:9d:ad:02:4b:27:2d:78:bc:d7:f1:41:a1:cd:9c:21:04:cb: 03:ca:4d:3f:97:88:07:53:f3:61:d4:42:9b:44:70:70:5f:55: 48:3c:cf:c9:67:df:80:55:5a:69:b5:8b:eb:06:8b:17:f6:57: b4:79:63:a2:20:f4:3a:c8:bf:22:cc:22:92:80:74:03:77:39: e1:e9:ba:54:3e:14:a4:ac:4a:92:bb:89:18:90:b7:59:0b:40: 04:29:6e:24:7d:82:82:d9:98:c2:4f:e4:55:3b:23:d2:dc:9f: b7:b1:87:41:56:c3:24:4a:ae:50:4c:02:af:b4:03:86:fc:79: ba:9e:c5:3e:fd:81:aa:af:32:b0:24:7e:93:d9:d5:8f:b5:a0: 7e:58:0b:89:7e:76:b6:64:f3:77:54:f7:27:a6:37:77:f2:a0: f2:8a:89:3e:21:f2:13:da:07:f1:3c:ef:5a:39:69:6b:88:c3: 99:eb:bb:3c:d8:41:32:e2:8e:82:31:88:95:30:b9:e8:c0:59: ac:a7:cc:0c:cd:88:f6:62:64:a6:57:c2:8e:cb:bb:4f:28:81: a3:7a:53:65:00:0f:d1:bd:2c:04:0b:48:74:f0:d0:9b:5a:50: 12:ae:24:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjQwMzA0MTcwNDUxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU1ZmYzMi0wNjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgNW4sROlj6eTuHvaeUySVVlFr93xwdJZQv0EWqCJdpVezsVEGlfc6w2toli 0s1iNmEzAKaOvLPf+UbFIx4oyeQ9OL87BO0B0ivqxbqoxNB49JYbjqGMUNEGhDc/ +r/n7Caxa4j7lbya8i5WcsPpHFPkPM9qNbUUsqclFqbgQMKI2SKWCp8WUGobJxbe t3wRrfTrlFfKj73l4S5esBE3VQRuuUTsdGIlG91U3rQjQxHl71lrhvtRzjByRV6C 1+XlwmWX7a72Zj4t7AD5P+YTzadQebIINN8WPul9HFjTykNa+ZaAqrM07EhX542b iWfaiC0TDA3Acl4q33jjv9csHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCwweBMH XxRCf/fXQctuci9g7g9MMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEMTMvQUEyNURGMUM5OEZEMTFFN0E4MTQ1NTYwQzRGOUFFMDIvOUQ4NDlDMEM5 OEZFMTFFN0EzQTVGMTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnUvgwDQYJKoZIhvcNAQELBQADggEBADQFNpw1bdCVeEEY ppVLDa/ONbudrQJLJy14vNfxQaHNnCEEywPKTT+XiAdT82HUQptEcHBfVUg8z8ln 34BVWmm1i+sGixf2V7R5Y6Ig9DrIvyLMIpKAdAN3OeHpulQ+FKSsSpK7iRiQt1kL QAQpbiR9goLZmMJP5FU7I9Lcn7exh0FWwyRKrlBMAq+0A4b8ebqexT79gaqvMrAk fpPZ1Y+1oH5YC4l+drZk83dU9yemN3fyoPKKiT4h8hPaB/E871o5aWuIw5nruzzY QTLijoIxiJUwuejAWaynzAzNiPZiZKZXwo7Lu08ogaN6U2UAD9G9LAQLSHTw0Jta UBKuJJg= -----END CERTIFICATE-----Generated at Wed May 8 20:35:51 2024 by rpki-client on console-ams.rpki-client.org